> So I got side-tracked into this tonight, and looked up a bunch of stuff. I'm not > certain of some things. > > - There was an article about 'rolling your own', as Win7 on up has its own VPN > feature. But this covers only those machines on your network, right? So surfing isn't > secure. > > - Let's say you shut down all your devices at night. When you next - or even firstly > - connect to your VPN service, aren't you at risk? > > - I think someone here suggested Hola. I haven't tried it. Has anyone?....experience? > > - I thought internet service was by definition encrypted, and that providers didn't > spy on you. At least, wasn't this originally the case?....wasn't at least early AOL > like this?
You can get something like an ASUS router or one of the many routers with an opensource package on them and have the whole network go out through a VPN if you want. You can also get pretty much any enterprise class router to do it too.
As TriggerFin points out your as at the mercy of whatever VPN network you choose.
Internet is only as secure as the ISPs lets it be and their upstream providers. They 100% have the capability to inspect all headers of packets. That is by IP/RFC design. Otherwise they would not know where to send your packets to. However, they can also look at the payload. Unless the payload is encrypted they can see everything. Even then the header will not be encrypted. They need to know your destination. Some ISPs have been known to rewrite the data as it comes back into your network so they can serve up advertisements. Now if you use sites that have https you can mitigate somewhat what the ISP and anyone they hand their packets to from seeing or manipulating the data.
The same holds true for the VPN. Except now the ISP can not see your payload as the VPN tunnel will be encrypted. They just see junk all streaming to 1 IP and the payload is encrypted. Remember you need the header to be legible by the ISP to know where to send it. A VPN just nests an IP packet inside of another IP packet as encrypted payload. But after that it is back to normal internet. It is up to you to encrypt your data and not trust your VPN either. VPN in this context only obscures you. It does not 100% hide you. It just changes your exit point onto the internet and removes your ISP from spying on you.
I doubt early dialup AOL had much, if any, encryption going on. They probably relied on the fact that phone companies are legally forbidden from listening in on calls. To listen in you need a warrant. That was merely a legal technicality issue not an actual technical one.
|